DEBIAN-CVE-2005-2920

Buffer overflow in libclamav/upx.c in Clam AntiVirus ClamAV before 0.87 allows remote attackers to execute arbitrary code via a crafted UPX packed executable...

DEBIAN-CVE-2005-2919

libclamav/fsg.c in Clam AntiVirus ClamAV before 0.87 allows remote attackers to cause a denial of service infinite loop via a crafted FSG packed executable...

CVE-2005-2919

libclamav/fsg.c in Clam AntiVirus ClamAV before 0.87 allows remote attackers to cause a denial of service infinite loop via a crafted FSG packed executable...

CVE-2005-2919

libclamav/fsg.c in Clam AntiVirus ClamAV before 0.87 allows remote attackers to cause a denial of service infinite loop via a crafted FSG packed executable...

CVE-2005-2919

libclamav/fsg.c in Clam AntiVirus ClamAV before 0.87 allows remote attackers to cause a denial of service infinite loop via a crafted FSG packed executable...

CVE-2005-2920

Buffer overflow in libclamav/upx.c in Clam AntiVirus ClamAV before 0.87 allows remote attackers to execute arbitrary code via a crafted UPX packed executable...

CVE-2005-2920

Buffer overflow in libclamav/upx.c in Clam AntiVirus ClamAV before 0.87 allows remote attackers to execute arbitrary code via a crafted UPX packed executable...

CVE-2005-2920

CVE-2005-2920 : ClamAV is affected by a buffer overflow in libclamav/upx.c when processing UPX-packed executables. The issue allows a remote attacker to potentially execute arbitrary code by sending a crafted UPX-packed file. Public entries and advisories confirm this in ClamAV versions prior to ...

linux/x86 /bin/sh Standard Opcode Array Payload 21 Bytes

No description provided by source. / lnxbinsh4.c - v1 - 21 Byte /bin/sh Opcode Array Payload Copyrightc 2004 c0ntex [email protected] This program is free software; you can redistribute it and/or modify it under the terms of the GNU General Public License as published by the Free Software...

Adobe Version Cue multiple vulnerabilities

Executable files are writable. It's possible to attach user's library to suid executable. Symbolic links problem...

CVE-2005-2553

The findtarget function in ptrace32.c in the Linux kernel 2.4.x before 2.4.29 does not properly handle a NULL return value from another function, which allows local users to cause a denial of service kernel crash/oops by running a 32-bit ltrace program with the -i option on a 64-bit executable...

CVE-2004-2289

Microsoft Windows XP Explorer allows local users to execute arbitrary code via a system folder with a Desktop.ini file containing a .ShellClassInfo specifier with a CLSID value that is associated with an executable file...

SUSE-SA:2005:044: kernel

The remote host is missing the patch for the advisory SUSE-SA:2005:044 kernel. The Linux kernel is the core component of the Linux system. This update fixes various security as well as non-security problems discovered since the last round of kernel updates. Not all kernels are affected by all the...

[Full-disclosure] HAURI live update. Arbitrary remote file download and execute vulnerability

Dear F/D Mailling -----------Cut Cut-------------------------------- Title: HAURI live update. Arbitrary remote file download and execute vulnerability Discoverer: Original discoverer Neo Original exploit improver PARK, GYU TAE [email protected] Advisory No.: NRVA05-03 Critical: High Critic...

[Full-disclosure] JBoss jBPM 2.0: Remote code execution and classloader covert channel

Security Advisory: jBPM 2.0 Date: 06/22/05 URL: http://www.illegalaccess.org/java/jbpm.php " JBoss jBPM is a flexible, extensible workflow management system." jbpm.org Problem 1: Remote code execution possible with jBPM . This allows an attacker to trigger an arbitrary executable on the jBPM/ JBo...

DSX Raritan Console Servers weak permissions

Executable files are writable by unprivileged users...

linux/x86 upload & exec 189 bytes

Exploit for linux/x86 platform in category shellcode ================================= linux/x86 upload & exec 189 bytes ================================= UPLOAD & EXEC SHELLCODE 1 converting asm to hex 2 asm code 3 hex output 4 upload function This is an 'upload and exec' shellcode for the x86...

Yaws Webserver source code leak

00 at the end of executable file allows to see it's content...

SilverCity: Insecure file permissions

Background SilverCity provides lexical analysis for over 20 programming and markup languages. Description The SilverCity package installs three executable files with insecure permissions. Impact A local attacker could modify the executable files, causing arbitrary code to be executed with the...

USN-136-1: binutils vulnerability

Tavis Ormandy found an integer overflow in the Binary File Descriptor BFD parser in the GNU debugger. The same vulnerable code is also present in binutils. By tricking an user into processing a specially crafted executable with the binutils tools strings, objdump, nm, readelf, etc., an attacker...